Devops Security Lead

• 9+ years of experience in Configuration Management, DevOps and Enterprise Applications deployments on data centers and public clouds.
• Experience in a modern software development environment that is Agile and incorporates DevOps practices
• Hands on experience with DevOps Tools like Jenkins, Artifactory, Maven
• Proven experience leading team members and projects.
• Strong experience with cloud platforms like Azure
• Experience in Python, Terraform, PowerShell
• Version control systems: Git, BitBucket, TFS
• Experience in containerization and orchestration(kubernetes)
• Configuration management using Puppet, Ansible, or Chef
• Good understanding of Cloud governance and how to implement
• Experience with Continuous Integration and Continuous Deployment
• Cloud Certifications like Azure devops certification highly preferred
• Expert in Linux/Windows server operating systems, and Web Server technologies including IIS, Tomcat, WebLogic, WebSphere and Apache Web Server
• Knowledge of relational databases including SQL Server, Postgres and MySQL
• Proven ability to work in a team-oriented environment, providing back-up support to team members & establishing/maintaining effective work relationships with co-workers within and across functional areas.
• Previously demonstrated proactive and positive approach to tasks and projects overall, as well as to the types of scheduling & process changes that are inherent in a fast-paced business.

Role:

• Adopt and implement best practices and champion an engineering culture emphasizing Agile, DevOps, Continuous Integration, and Continuous Deployment.
• Manage CI/CD, integration, automation of service integration, delivery and deployment of applications and business solutions with security embedded.
• Drive consistent DevOps and DevSecOps practices across the team and bring in continuous improvements in these areas.
• Identify security tools that can be integrated into DevOps pipeline.
• Integrate artifacts into CI/CD pipelines. Maintain documentation in searchable manner.
• Build good understanding on latest secure development practices, tools and help increase awareness around secure code practices.
• Work with Security Architect and Security Engineering teams in Risk assessment and threat modelling activities.
• Maintain and implement change management control procedures and processes for production, UAT and QA releases.
• Respond to alerts of application instability, identifying root cause and corrective actions.
• Troubleshoot deployment issues and collaborate with Dev/Test teams as required.
• QA knowledge.
• Govern CI/CD pipeline and ensure compliance. Generate reports and conduct audits on CI/CD.
• Participate in activities like Cost governance, IT resource usage governance, Source code governance etc.